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I. REAL PARTY IN INTEREST 

The real party in interest in this appeal is International Business Machines Corporation 

(IBM). 

II. RELATED APPEALS AND INTERFERENCES 

With respect to other appeals or interferences that will directly affect, or be directly 
affected by, or have a bearing on the Board's decision in the pending appeal, there are no such 
appeals or interferences. 

III. STATUS OF CLAIMS 

Claims 1-25 are pending in this application; claims 1-25 have been finally rejected; and 
claims 1-25 have been appealed. No claims have been allowed, canceled, or withdrawn. The 
Appendix "A" contains the full set of pending claims. 

IV. STATUS OF AMENDMENTS 

No after-final amendments have been filed. 

V. SUMMARY OF CLAIMED SUBJECT MATTER 

The subject matter defined in independent claim 1 may be understood with reference to 
the example embodiment depicted in Figures 4 and 7 which depict a method for managing 
attribute certificates to authorize access to controlled resources within a distributed data 
processing system. In the recited methodology, an attribute certificate (e.g., AC 404) from a 
client (e.g., 402) is received at a host (e.g., target service 406) within the distributed data 
processing system. See, e.g., Specification, Figure 7, 702; page 22, line 30 to page 23, line 1 
("User 402 is a valid holder of attribute certificate 404, which user 402 presents to target service 
406 to access a controlled resource."); and page 25, lines 23-25. The host then extracts a first 
locator (e.g., PKCLOCATOR 408) from the attribute certificate, wherein the first locator 
identifies a location (e.g., in Directory 410) of a public key certificate (PKC) of an issuing 
authority for the attribute certificate. See, e.g., Specification, Figure 7, 704, 706, 708; page 23, 
lines 1-6 ("Target service 406 extracts PKC LOCATOR 408, which is a Distributed Trust Path 
Locator, and uses PKC LOCATOR 408 to locate a database or directory service, such as 
directory 410, that stores the PKCs that are needed by target service 406 to validate attribute 
certificate 404."); and page 25, lines 25-30. Once the host (e.g., target service 406) retrieves the 
public key certificate of the issuing authority for the attribute certificate, the attribute certificate 
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is verified by the host (e.g., target service 406) using the public key certificate of the issuing 
authority for the attribute certificate. See, e.g., Specification, Figure 7, 710, 712, 714; page 23, 
lines 1-8 ("Target service 406 extracts PKCLOCATOR 408, which is a Distributed Trust Path 
Locator, and uses PKC LOCATOR 408 to locate a database or directory service, such as 
directory 410, that stores the PKCs that are needed by target service 406 to validate attribute 
certificate 404. Directory 410 then returns user's PKC 412 and PKC 414 of the issuing authority 
of attribute certificate 404."); and page 26, lines 7-16. Once the attribute certificate is verified, 
the client (e.g., 402) is authorized to have access to the controlled resources in accordance with 
authorization attributes stored in the attribute certificate. See, e.g., Specification, Figure 7, 716; 
page 26, lines 14-21 ("After receiving the PKCs, the target service verifies the attribute 
certificate using the retrieved PKCs (step 714), and assuming that the verification is successful, 
then the target service may allow the user or client to have access to the controlled resource's of 
the target service in accordance with the authorization attributes in the user's attribute certificate 
(step 716)."); and page 26, lines 7-21. 

As described in the specification and depicted in Figure 4, various embodiments of the 
present invention allow the user 402 to send only his/her attribute certificate 404 to the target 
service 406. The attribute certificate 404 may contain a locator that identifies the location of the 
attribute certificate-issuing authority's public key certificate 414. The locator information is 
placed within the attribute certificate when the attribute certificate is first generated in response 
to a request by the client/user, and is used by the target service 406 to automatically locate and 
download the attribute certificate-issuing authority's public key certificate 414. See, e.g., 
Specification, Figure 4 and page 22, lines 9-21. In selected embodiments, an extension within an 
attribute certificate (FIG. 6), called a distributed trust path locator, allows an attribute certificate 
to be physically disassociated from its supporting public key certificates while remaining 
logically associated with its supporting public key certificates. See, e.g., Specification, Figure 6 
and page 24, line 5 to page 25, line 18. The user's attribute certificate (AC 404) and its 
supporting public key certificates allow any server using an attribute certificate to locate and 
retrieve the public key certificate of the user 412 and of the AC-issuing authority 414. As a 
result, the user 402 is not required to communicate his/her public key certificate to a target 
service 406. 
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To comply with 37 CFR § 41.37(c)(l)(v), a color-coded comparison of independent 
claim 1 (including reference characters) and the relevant portion of Figure 7 is set forth below: 




Figure 7 



In further compliance with 37 CFR § 41.37(c)(l)(v), a color-coded comparison of 
selected Figures from the application and each of the pending independent claims is attached at 
Appendix "B" to provide a concise explanation of the subject matter defined in each independent 
claim. The subject matter of the independent claims is set forth in the specification at page 5 and 
21-28, with Figures 4, 6 and 7 illustrating selected embodiments of the present invention, though 
Figures 1 A depicts a typical network of data processing systems which may implement the 
present invention, and Figure IB depicts a computer architecture of a data processing system in 
which the present invention may be implemented. 

VI. GROUNDS OF REJECTION TO BE REVIEWED ON APPEAL 

The grounds of rejection that are on appeal are: 

(A) whether claims 1,3,5, 7, 9, 11, 13, 15, 17, 19, 21, and 23 are unpatentable under 
35 U.S.C. § 103(a) over Appellant's Admitted Prior Art (AAPA) in view of Zubeldia, "Digital 
certification system", EPO Patent Application Publication EP 0869637 A2, filed 04/01/1998, 
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published 10/08/1998, and further in view of Grimmer, "Method and apparatus for retrieving 
X.509 certificates from an X.500 directory", U.S. Patent Number 5,774,552, filed 12/13/1995, 
issued 06/30/1998; 

(B) whether claims 2, 6, 8, 10, 14, 16, 18, 22, and 24 are unpatentable under 35 
U.S.C. § 103(a) over Appellant's Admitted Prior Art (AAPA) in view of Zubeldia , Grimmer, and 
further in view of Kent, "Method and apparatus for supporting authorities in a public key 
infrastructure", U.S. Patent Number 6,671,804, filed 01/01/1999, issued on 12/30/2003, and de 
Silva et al., "Digital certificate cross-referencing", U.S. Patent Number 6,615,347 Bl, filed 
06/30/1998, issued 09/02/2003; and 

(C) whether independent claim 25 is unpatentable under 35 U.S.C. § 103(a) over 
Farrell et al., "An Internet Attribute Certificate Profile for Authorization", IETF RFC draft-ietf- 
pkix-ac509prof-05.txt, 08/2000, and further in view of de Silva et al. and Zubeldia . 

VII. ARGUMENTS 

VILA. Was 35 U.S.C. § 103(a) properly applied in a rejection of claims 1, 3, 5, 7, 9, 11, 
13, 15, 17, 19, 21, and 23 as being unpatentable over AAPA in view of Zubeldia and further 
in view of Grimmer ? 

Arguments in support of common patentability 

Claims 1, 3, 4, 5, 7, 9, 1 1, 12, 13, 15, 17, 19, 20, 21, and 23 stand and fall together as a 
single group. 

The final Office action contains a common rejection of independent claims 1,5,7, 9, 13, 
15, 17, 21, and, 23, which includes all of the pending independent claims of the present patent 
application except independent claim 25. The independent method claims primarily differ with 
respect to the perspective of an entity that acts on an attribute certificate; for example, some of 
the claims are directed to a method that is performed by a server, whereas some of the claims are 
directed to a method that is performed by a client. More specifically, independent claim 1 is a 
method claim that is directed to the actions of a server that received and processes a novel 
attribute certificate of the present invention. In contrast, independent claim 5 is a method claim 
that is directed to the actions of a client that presents the novel attribute certificate by sending it 
to a server; independent claim 7 is a method claim that is directed to the actions of a computer 
that constructs the novel attribute certificate. 
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In paragraph 4 on page 2 of the final Office action, the Office Action rejects the set of 
claims by discussing the elements of independent claim 1 . Since the Office action has focused 
on claim 1 as representative of these independent claims, Appellant provides a rebuttal of the 
rejection with respect to claim 1 while asserting that the arguments that are provided in support 
of the patentability of claim 1 are applicable to claims 5, 7, 9, 13, 15, 17, 21, and, 23. 
Appellant's arguments hereinbelow with respect to the novel attribute certificate are applicable 
to any of the claims because each of these claims contains or includes language that recites the 
novel attribute certificate. 

In paragraphs 8-9 on page 5 of the final Office action, the Office action rejects dependent 
claims 4, 12, and 20 by discussing the elements of dependent claim 4, which depends from 
independent claim 1. Appellant does not argue for the separate patentability of these claims. 

Hence, for purposes of this argument, Appellant argues for the patentability of claims 1 , 
3, 4, 5, 7, 9, 11, 12, 13, 15, 17, 19, 20, 21, and 23 of the present invention using independent 
claim 1 as an exemplary claim. 

Arguments against the prior art rejection 

It should be noted that this rejection relies upon Grimmer . Apparently, Grimmer is relied 
upon merely for its disclosure of storing digital certificates in a repository that allows compliance 
with the X.509 standard, which is a feature that is not recited within the independent claims. It is 
unclear why Grimmer is included at this particular location within the Office action. Hence, 
Appellant asserts that Grimmer is irrelevant with respect to the main obviousness argument. 

All of the pending independent claims have been rejected, at least in part, over the 
disclosure in Zubeldia ; each of the independent claims has at least one common element against 
which the Office action applies the teachings of Zubeldia . However, Appellant asserts that 
Zubeldia does not disclose the claimed feature for which the Office action relies on Zubeldia as 
disclosing, notwithstanding the arguments in the Office action, thereby causing the rejection to 
be deficient. In addition, Appellant makes other arguments to support Appellant's contention 
that the rejection is deficient for failing to present a prima facie case of obviousness. 

More specifically, the Office action addresses the first, fourth, and fifth elements of claim 
1 by referencing Appellant's Admitted Prior Art (AAPA); Appellant does not dispute this 
portion of the argument in the rejection. At the time of the present invention, attribute 
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certificates were well-known. However, the present invention is directed to a novel construction 
and usage of an attribute certificate, which was unknown in the prior art and which was non- 
obvious from the prior art. 

Appellant, though, does strongly argue against the remainder of the rejection. The Office 
action addresses the second and third elements of claim 1 by referencing Zubeldia . Independent 
claim 1 reads as follows: 

1 . A method for authorizing access to controlled resources within a distributed data 
processing system, the method comprising: 

receiving an attribute certificate from a client at a host within the distributed data 
processing system; 

extracting a first locator from the attribute certificate, wherein the first locator 
identifies a location of a public key certificate of an issuing authority for the attribute 
certificate; 

retrieving the public key certificate of the issuing authority for the attribute 
certificate; 

verifying the attribute certificate using the public key certificate of the issuing 
authority for the attribute certificate; and 

authorizing the client to have access to the controlled resources in accordance 
with authorization attributes stored in the attribute certificate. 

The rejection admits that AAPA does not disclose the second and third elements of claim 
1 by stating in line 1 on page 3 of the final Office action that " AAPA does not explicitly disclose 
..." these claim elements. The rejection then continues by discussing Zubeldia . 

As an initial point, Appellant notes that the portions of the rejection that discuss Zubeldia 
are written as if the claim language merely recites operations on a digital certificate. However, 
this is not the case. The present invention is particularly directed to novel features with respect 
to a special type of digital certificate—an attribute certificate. By disregarding the fact that the 
present invention is directed to operations on an attribute certificate, the rejection presents a self- 
contradicting argument as to why one having ordinary skill in the art would have been motivated 
to modify the prior art to reach the present invention, as discussed in more detail further below. 

The rejection argues that the second and third elements of claim 1 are disclosed by 
Zubeldia by stating: 



Page 7 
Benantar- 09/734,810 



However, Zubeldia discloses using certificate index to retrieve certificate information 
used for authentication from repository (Zubeldia: page 4, line 33 - page 5 line 8). It 
would have been obvious to one having ordinary skill in the art to use the certificate 
index to retrieve information required for authenticating the digital certificate. Therefore, 
it would have been obvious to one having ordinary skill in the art to combine the 
teachings of Zubeldia within the system of AAPA because it allows more efficient and 
flexible digital certification by storing necessary information for authenticating the 
certificate in a central repository so that it is easy to change attributes in the certificate. 

The Office action is correct that Zubeldia discloses the feature of "using certificate index 

to retrieve certificate information used for authentication from repository" as stated by the 

rejection. Zubeldia states the following on page 4, lines 33-57: 

The present invention provides a digital certification system which allows a user 
to add information to a digital certificate without requiring the re-issuance of the digital 
certificate and the invalidating of all distributed copies of the previous certificate. The 
invention comprises a digital certificate and the associated computer system and 
procedure which support its usage. 

The digital certificate of the present invention is split into two components. One 
component (the "certificate index") is distributed to the user and the public. The other 
component (the "certificate information") is maintained by the certification authority in a 
publicly available trusted repository. 

In one embodiment, a certification authority generates a unique user ID for an 
Appellant for a digital certificate. The certification authority then issues a digital 
certificate containing, in the certificate index, the unique user ID, the user's public key, 
and the user's name. Unlike in the prior art, in the present invention, additional 
certificate information (such as, for example, the user's E-mail address, or biometric 
information) is excluded from the digital certificate index. Instead, such additional 
certificate information is maintained by the certification authority in a publicly available 
trusted repository. 

Access to the additional certificate information is obtained through the unique 
user ID in the certificate index. Instead of linking a public key, a user name, and the 
additional information, the digital certificate of the present invention links a public key 
with an unchanging user ID, which allows access to the additional certificate information. 
The present invention thus allows the certification authority to change the additional 
certificate information at the request of the user without requiring issuance of a new 
certificate. 

In the system that is disclosed in Zubeldia , the certificate information that is stored in the 
publicly available trusted repository contains the certificate authority's signature over the 



Page 8 
Benantar- 09/734,810 



certificate information; on page 7, lines 52-55, Zubeldia states that "[t]he certificate information 

600 includes ... a CA's digital signature of the certificate information 690". Hence, it is correct 

for the rejection to state that Zubeldia discloses the feature of "using certificate index to retrieve 

certificate information used for authentication from repository" because the certificate 

authority's signature would be verified as part of the process of authenticating the type of digital 

certificate that is disclosed by Zubeldia . 

However, Zubeldia states that following on page 8, lines 45-48 (emphasis added): 

In step 1 103, the receiver verifies the authenticity of the digital certificate index 
obtained in step 1 102 by checking the digital signature of the issuing CA on the digital 
certificate. For example, if the digital certificate index has a form shown in Figure 9, the 
receiver decrypts CA's digital signature 900 using the CA's public key (to which the 
receiver has access), and obtains a first decrypted message digest. 

Although Zubeldia describes a novel type of digital certificate, an entity that needs to 
verify or authenticate an instance of the novel type of digital certificate is responsible for 
obtaining a copy of the public key certificate of the certificate authority that issued the instance 
of the novel type of digital certificate that is to be verified. This responsibility also exists in a 
similar situation with a standard X.509 digital certificate; in other words, in a typical system, the 
entity that needs to verify or authenticate an X.509 digital certificate is responsible for obtaining 
a copy of the public key certificate of the certificate authority that issued the X.509 digital 
certificate that is to be verified. 

Thus, Zubeldia does not disclose anything novel with respect to the need of the verifier of 
a digital certificate to have access in some manner to a copy of the certificate authority's public 
key certificate. In a typical X.509-compliant system, the verifier may obtain a copy of the 
certificate authority's public key certificate in two different ways. First, the verifier may have 
access to a copy of the certificate authority's public key certificate because the verifier received 
it along with the digital certificate that is to be verified; for example, the verifier may be a 
service that receives a copy of the public key certificate of a customer along with a copy of the 
public key certificate of the certificate authority that issued the customer's digital certificate. 
Second, the verifier may know of a publicly available certificate repository to which the verifier 
has access in order to retrieve a copy of the certificate authority's public key certificate after 
receiving a copy of the public key certificate of a customer. 
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In contrast, the present invention discloses that a verifier of an attribute certificate obtains 

a copy of the public key certificate of the issuing authority of the attribute certificate (the 

certificate authority that issued the attribute certificate) because it extracts from the attribute 

certificate a locator that identifies a particular storage location for the public key certificate of the 

issuing authority. More specifically, independent claim 1 recites: 

extracting a first locator from the attribute certificate, wherein the first locator 
identifies a location of a public key certificate of an issuing authority for the attribute 
certificate; 

retrieving the public key certificate of the issuing authority for the attribute 
certificate; ... 

There is nothing equivalent nor analogous in Zubeldia to this claimed feature of the 
present invention as recited within the second and third elements of claim 1 . Zubeldia discloses 
a locator, i.e. a "certificate index", at which to find the "certificate information", which includes 
information that would be stored within a typical X.509. However, Zubeldia does not disclose 
nor suggest that the "certificate information" does include or could include the digital certificates 
that are needed to verify the "certificate index" and the "certificate information". Appellant 
asserts that the secondary prior art reference, Zubeldia , does not disclose the claimed feature for 
which the rejection relies on Zubeldia as disclosing in order to support the rejection's argument. 
Hence, Appellant asserts that the rejection fails to provide prima facie case of obviousness 
against the claimed present invention. 

Moreover, Zubeldia teaches away from the present invention. Zubeldia does not disclose 
nor suggest that the "certificate information" includes a copy of the public key certificate of the 
certificate authority that issued the digital certificate because this feature of the present invention 
would contradict the purpose of the novel features in Zubeldia . The purpose of the data items 
within the "certificate information" is related multiple times throughout Zubeldia , e.g., which 
states on page 7, lines 8-10: "Changeable user information, instead of being included in the 
certificate index, is maintained at a location indicated by the unique user ID." In its summary 
section, Zubeldia teaches that the "certificate information" includes "additional certificate 
information" that "allows the certification authority to change the additional certificate 
information at the request of the user without requiring issuance of a new certificate". The 
public key certificate of the certificate authority that issues the certificate does not fit into the 



Page 10 
Benantar- 09/734,810 



same category of information as "changeable user information". Thus, Zubeldia teaches away 
from its inclusion in the "certificate information" in contradiction to the argument in the 
rejection. Since Zubeldia teaches away from the claimed features of the present invention, 
Appellant asserts that the rejection fails to provide prima facie case of obviousness against the 
claimed present invention. 

Furthermore, the motivational statement in the obviousness rejection of claim 1 is 
misleading for multiple reasons. First, the rejection states that "[i]t would have been obvious to 
one having ordinary skill in the art to use the certificate index to retrieve information required for 
authenticating the digital certificate because digital certificates can be modified to result in 
different forms that meets [sic] different needs/purposes." This tautological statement merely 
states the fact that information within a digital certificate can be authenticated and that digital 
certificates can be used for different purposes; however, it begs the question as to why one 
having ordinary skill in the art would have been motivated to perform the actions of the present 
invention. As discussed above, it is correct to state that Zubeldia discloses using a certificate 
index to retrieve information that is required for authenticating a digital certificate, but the 
motivational statement does not logically conclude this path of reasoning with any other 
arguments concerning its importance. 

Second, the rejection states: 

It would have been obvious to one having ordinary skill in the art to combine the 
teachings of Zubeldia within the system of AAPA because it allows more efficient and 
flexible digital certification by storing necessary information for authenticating the 
certificate in a central repository so that it is easy to change attributes in the certificate. 

In other words, the hypothetical system that combines Appellant's Admitted Prior Art 
( AAPA ) and Zubeldia would supposedly provide the advantage of "storing necessary 
information for authenticating the certificate in a central repository so that it is easy to change 
attributes in the certificate." However, given the fact that digital certificates were commonly 
stored in directories, one could argue that AAPA already discloses "storing necessary 
information for authenticating the certificate in a central repository", thereby partly negating the 
supposed motivation in modifying a system that is implemented in accordance with AAPA . 
Moreover, one of the purposes of an attribute certificate as disclosed by AAPA is that one wants 
to bind the user's attributes in a digital certificate such that those attributes cannot be modified 
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without obtaining a new attribute certificate, thereby also negating another supposed motivation 
in modifying a system that is implemented in accordance with AAPA . Appellant asserts that one 
of ordinary skill in the art would not have been motivated by the reasons that are provided within 
the rejection to modify the teachings in AAPA ; hence, the obviousness rejection fails to provide 
prima facie case of obviousness against the claimed present invention. 

More specifically, Appellant asserts that modifying AAPA to include teachings of 
Zubeldia as argued in the rejection would completely change the principle of operation of 
AAPA . As noted above, an X.509 attribute certificate as disclosed by AAPA is a digital 
certificate that ensures that a user's attribute information within the digital certificate remains 
unchanged. One wants to bind the user's attributes in a digital certificate such that those 
attributes cannot be modified without obtaining a new attribute certificate. The present invention 
provides a novel feature of including "a locator" in an attribute certificate such that the locator 
identifies a storage location of a copy of the public key certificate of the certificate authority that 
issued the attribute certificate; the user's attribute information remains bound within the attribute 
certificate. 

In contrast, Zubeldia discloses the use of a "certificate index" that allows the user's 

information ("certificate information") to be located in a repository such that the information in 

the repository can be changed more easily without having to issue a new digital certificate. At 

most, a hypothetical combination of AAPA and Zubeldia as argued by the rejection using the 

suggested advantages of Zubeldia would result in a system in which the user's attribute 

information from the attribute certificate was stored in a repository. However, this modification 

would negate the purpose of using an attribute certificate at all. If the user's attribute 

information could be easily changed within the repository, then a third party, such as an e- 

commerce web site, could not depend on the user's attribute information for performing 

authorization operations. In other words, the security advantages of using an attribute certificate 

would be lost. As stated in stated in MPEP § 2143.01: 

If the proposed modification or combination of the prior art would change the principle of 
operation of the prior art invention being modified, then the teachings of the references 
are not sufficient to render the claims prima facie obvious. In re Ratti, 270 F.2d 810, 123 
USPQ 349 (CCPA 1959). 
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Appellant asserts that one of ordinary skill in the art would not have been motivated by 
the reasons that are provided within the rejection to modify the teachings in AAPA ; hence, the 
obviousness rejection fails to provide prima facie case of obviousness against the claimed 
present invention. 

Rejections are deficient with respect to requirements for a proper obviousness rejection 
The examiner bears the burden of establishing a prima facie case of obviousness based on 
the prior art when rejecting claims under 35 U.S.C. § 103. In re Fritch, 972 F.2d 1260, 23 
U.S. P. Q. 2d 1780 (Fed. Cir. 1992). Only when a prima facie case of obviousness is established 
does the burden shift to the Appellant to produce evidence of nonobviousness. In re Oetiker, 977 
F.2d 1443, 1445, 24 U.S.P.Q.2d 1443, 1444 (Fed. Cir. 1992); In re Rijckaert, 9 F.3d 1531, 1532, 
28 U.S.P.Q.2d 1955, 1956 (Fed. Cir. 1993). If the Patent Office does not produce a prima facie 
case of unpatentability, then without more the Appellant is entitled to grant of a patent. In re 
Oetiker, 977 F.2d 1443, 1445, 24 U.S.P.Q.2d 1443, 1444 (Fed. Cir. 1992); In re Grabiak, 769 
F.2d 729, 733, 226 U.S.P.Q. 870, 873 (Fed. Cir. 1985). In response to an assertion of obviousness 
by the Patent Office, the Appellant may attack the Patent Office's prima facie determination as 
improperly made out, present objective evidence tending to support a conclusion of 
nonobviousness, or both. In re Fritch, 972 F.2d 1260, 1265, 23 U.S.P.Q.2d 1780, 1783 (Fed. Cir. 
1992). 

AAPA and Zubeldia clearly fail to disclose at least one feature of the present invention as 
recited within each independent claim, notwithstanding the arguments presented by the Office 
action, thereby rendering AAPA and Zubeldia incapable of being used as primary and secondary 
references as argued by the current rejection. Moreover, a hypothetical combination of AAPA 
and Zubeldia would also fail to reach the claimed invention of the present patent application. As 
should be recognized, because both the primary and secondary references in the rejection fail to 
disclose the claimed features against which the references were applied, and because the 
references fail to be combinable to produce these claimed features, the rejection fails to fulfill the 
requirements of a proper obviousness argument. 

With respect to claims 1,3,5, 7, 9, 11, 13, 15, 17, 19, 21, and 23 of the present patent 
application, Appellant respectfully submits that it would not have been obvious for one having 
ordinary skill in the art to have used the applied prior art references to reach the claimed 



Page 13 
Benantar- 09/734,810 



invention. Hence, a rejection of the claims cannot be based upon the cited prior art to establish a 
prima facie case of obviousness. Therefore, a rejection of the claims under 35 U.S.C. § 103(a) 
has been shown to be insupportable in view of the cited prior art, and the claims are patentable 
over the applied references. For this and other reasons, Appellant argues that the position of the 
Examiner should be reversed and that the rejection of the claims should not be upheld. 

VII.B. Was 35 U.S.C. § 103(a) properly applied in a rejection of claims 2, 6, 8, 10, 14, 
16, 18, 22, and 24 as being unpatentable over AAPA in view of Zubeldia and Grimmer and 
further in view of Kent and de Silva et al. ? 

Arguments in support of common patentability 

Claims 2, 6, 8, 10, 14, 16, 18, 22, and 24 stand and fall together as a single group. 

The final Office action contains a common rejection of dependent claims 2, 6, 8, 10, 14, 
16, 18, 22, and 24, which includes many of the pending dependent claims of the present patent 
application. These dependent claims primarily differ with respect to the perspective of an entity 
that acts on an attribute certificate; for example, some of the claims are directed to a method that 
is performed by a server, whereas some of the claims are directed to a method that is performed 
by a client. In paragraph 7 on pages 4-5 of the final Office action, the Office Action rejects the 
set of claims by discussing the elements of dependent claim 2. Since the Office action has 
focused on claim 2 as representative of these dependent claims, Appellant provides a rebuttal of 
the rejection with respect to claim 2 while asserting that the arguments that are provided in 
support of the patentability of dependent claim 2 are applicable to dependent claims 6, 8, 10, 14, 
16, 18, 22, and 24. Appellant's arguments hereinbelow with respect to the novel attribute 
certificate are applicable to any of the claims because each of these claims contains or includes 
language that recites the novel attribute certificate. Hence, for purposes of this argument, 
Appellant argues for the patentability of claims 2, 6, 8, 10, 14, 16, 18, 22, and 24 of the present 
invention using dependent claim 2 as an exemplary claim. 

Arguments in support of separate patentability 

Dependent claim 2 is separately patentable from independent claim 1 . Independent claim 
1 is directed to novel features in an attribute certificate such that the attribute certificate includes 
a first locator, "wherein the first locator identifies a location of a public key certificate of an 
issuing authority for the attribute certificate". Dependent claim 2 is directed to novel features in 
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an attribute certificate such that the attribute certificate includes a second locator, "wherein the 
second locator identifies a location of a public key certificate of a holder of the attribute 
certificate". Any suggestion that might be hypothetically found in the prior art for suggesting 
that an attribute certificate should include the features of claim 1 would not necessarily suggest 
that an attribute certificate should include the features of claim 2. 
Arguments against the prior art rejection 

The final Office action on page 4 states that "AAPA as modified does not explicitly 

disclose ..." the first element of claim 2. Dependent claim 2 reads: 

2. The method of claim 1 further comprising: 

extracting a second locator from the attribute certificate, wherein the second 
locator identifies a location of a public key certificate of a holder of the attribute 
certificate; 

retrieving the public key certificate of the holder of the attribute certificate; 
authenticating the holder using the public key certificate of the holder. 

The rejection then states: "However, Kent discloses the attribute certificate has a pointer 
that binds attribute certificate with the user's public key certificate (Kent: column 1, lines 36- 
39)." The cited portion of Kent reads: "Other forms of certificates, called attribute certificates, 
bind data other than a public key to a user's name, and associate the user's public key through a 
pointer to the user's public key certificate." 

Appellant asserts that Kent does not disclose anything more than Appellant's Admitted 

Prior Art ( AAPA) . In the specification of the present patent application, Appellant states: 

In the prior art, the user sends both his/her attribute certificate and public key certificate 
to the target service. The two certificates are linked together in some manner; in the 
X.509 specification, the "Holder" field in the attribute certificate contains linking 
information for the public key certificate, such as the identity of the public key 
certificate's issuing authority and the serial number of the holder's public key certificate. 

Appellant asserts that the use of the term "pointer" in Kent is equivalent to the use of the 
term "linking information" in Appellant's own specification in which Appellant discussed the 
prior art, particularly given the fact that Kent discusses the features of a typical X.509 attribute 
certificate in its background section without discussing any novel features with respect to 
attribute certificates. 
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More importantly, Kent does not disclose the first element of claim 2, which specifically 
recites that the attribute certificate of the present invention includes a locator that identifies "a 
location of a public key certificate of a holder of the attribute certificate". In other words, the 
attribute certificate of the present invention does not merely identify, as is done in the prior art 
and as is done in Kent , the appropriate public key certificate that is associated with the attribute 
certificate; in the present invention, the attribute certificate also identifies a location from which 
a copy of the public key certificate of a holder of the attribute certificate may be retrieved. Since 
Kent does not disclose the claimed feature, notwithstanding the argument in the rejection, 
Appellant asserts that the rejection is deficient for not presenting a prima facie case of 
obviousness with respect to dependent claim 2. 

The Office action on page 4 also states that "AAPA as modified does not explicitly 
disclose that there are two locators stored in the digital certificates." The rejection then states: 
"However, de Silva discloses storing a plurality of related certificates in the extension field of a 
certificate (de Silva: figure 3 and column 5 lines 15-41 and column 6 line 56-column 7 line 5)." 
Assuming arguendo that de Silva et al. discloses the feature of storing multiple certificates in the 
extension field of a certificate as argued by the rejection, Appellant notes that Kent fails to 
disclose the second element of claim 2, i.e. "a second locator from the attribute certificate, 
wherein the second locator identifies a location of a public key certificate of a holder of the 
attribute certificate". Since Kent does not disclose a first locator, it is irrelevant whether an 
argument for the inclusion of two locators can be made based on the disclosure of de Silva et al. 
as argued by the rejection. Since Kent does not disclose the claimed feature, notwithstanding the 
argument in the rejection, it is not possible to combine the teachings of Kent and de Silva et al. to 
reach the present patent application, notwithstanding the argument in the rejection to the 
contrary. Again, Appellant asserts that the rejection is deficient for not presenting a prima facie 
case of obviousness with respect to dependent claim 2. 

With respect to claims 2, 6, 8, 10, 14, 16, 18, 22, and 24 of the present patent application, 
Appellant respectfully submits that it would not have been obvious for one having ordinary skill 
in the art to have used the applied prior art references to reach the claimed invention. Hence, a 
rejection of the claims cannot be based upon the cited prior art to establish a prima facie case of 
obviousness. Therefore, a rejection of the claims under 35 U.S.C. § 103(a) has been shown to be 
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insupportable in view of the cited prior art, and the claims are patentable over the applied 
references. For this and other reasons, Appellant argues that the position of the Examiner should 
be reversed and that the rejection of the claims should not be upheld. 

VII.C. Was 35 U.S.C. § 103(a) properly applied in a rejection of claim 25 as being 
unpatentable over Farrell et al. and further in view of de Silva et al. and Zubeldia ? 

Arguments in support of separate patentability 

Independent claim 25 is separately patentable from independent claim 1 . Claim 25 reads 

25. A data structure representing an attribute certificate for use in a data processing 
system, the data structure comprising: 
an issuer name; 
a signature; 
a holder name; 
an attribute; and 

an extension, wherein the extension comprises a locator identifying a location of a 
public key certificate of an issuing authority for the attribute certificate. 

Independent claim 1 is directed to novel features in an attribute certificate such that the 
attribute certificate includes a first locator, "wherein the first locator identifies a location of a 
public key certificate of an issuing authority for the attribute certificate". In contrast, 
independent claim 25 is directed to a specific structure for an attribute certificate to include "a 
locator identifying a location of a public key certificate of an issuing authority for the attribute 
certificate". Any suggestion that might be hypothetically found in the prior art for suggesting 
that an attribute certificate should include the features of claim 1 would not necessarily suggest 
that an attribute certificate should include the specific structure of an attribute certificate as 
recited claim 25, wherein the locator is stored within an extension field of the digital certificate. 

Arguments against the prior art rejection 

In paragraph 1 1 on page 6, the final Office action states that "Farrell does not explicitly 
disclose wherein the extension comprises a locator identifying a location of a public key 
certificate of an issuing authority for the attribute certificate." The rejection then states: 
"However, de Silva discloses the extension is used to store related certificates and serial numbers 
(de Silva: figure 3 and column 5 lines 15-41 and column 6 line 56-column 7 line 5)." Assuming 
arguendo that de Silva et al. discloses the feature as argued by the rejection, Appellant notes that 
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Zubeldia fails to disclose a locator that identifies a location of a public key certificate of an 

issuing authority for the attribute certificate, as recited in claim 25. 

More specifically, the rejection states: 

Farrell as modified does not explicitly disclose that issuing authority certificate 
can be obtained through locator. However, Zubeldia discloses issuing authority 
certificate can be obtained from a certification repository and the repository is accessed 
through unique ID. 

As argued above at length, Zubeldia fails to disclose the claimed feature of a locator that 
identifies a location of a public key certificate of an issuing authority for the attribute certificate. 
In addition, Zubeldia cannot be modified to include the claimed feature. Since Zubeldia does not 
disclose nor suggest the locator of the present invention, it is irrelevant whether an argument for 
the inclusion of a locator in an extension of a digital certificate can be made based on the 
disclosure of de Silva et al. as argued by the rejection. Since none of the applied prior art 
references disclose the claimed feature, notwithstanding the argument in the rejection, it is not 
possible to combine the teachings of Farrell et al , Zubeldia, and de Silva et al. to reach the 
present patent application, notwithstanding the argument in the rejection to the contrary. 
Appellant asserts that the rejection is deficient for not presenting a prima facie case of 
obviousness with respect to independent claim 25. 

With respect to claim 25 of the present patent application, Appellant respectfully submits 
that it would not have been obvious for one having ordinary skill in the art to have used the 
applied prior art references to reach the claimed invention. Hence, a rejection of claim 25 cannot 
be based upon the cited prior art to establish a prima facie case of obviousness. Therefore, a 
rejection of claim 25 under 35 U.S.C. § 103(a) has been shown to be insupportable in view of the 
cited prior art, and claim 25 is patentable over the applied references. For this and other reasons, 
Appellant argues that the position of the Examiner should be reversed and that the rejection of 
claim 25 should not be upheld. 

VIII. CLAIMS APPENDIX - 37 CFR § 41.37(c)(l)(viii) 

A copy of the pending claims involved in the appeal is attached as Appendix "A." 
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IX. EVIDENCE APPENDIX - 37 CFR § 41.37(c)(l)(ix) 

None. 

X. RELATED PROCEEDINGS APPENDIX - 37 CFR § 41.37(c)Q)(x) 

There are no related proceedings. 
XL CONCLUSION 

In view of the above arguments, it is respectfully urged that the rejection of the claims 
should not be sustained. 
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APPENDIX A - PENDING CLAIMS 



1 . A method for authorizing access to controlled resources within a distributed data 
processing system, the method comprising: 

receiving an attribute certificate from a client at a host within the distributed data 
processing system; 

extracting a first locator from the attribute certificate, wherein the first locator identifies a 
location of a public key certificate of an issuing authority for the attribute certificate; 

retrieving the public key certificate of the issuing authority for the attribute certificate; 

verifying the attribute certificate using the public key certificate of the issuing authority 
for the attribute certificate; and 

authorizing the client to have access to the controlled resources in accordance with 
authorization attributes stored in the attribute certificate. 

2. The method of claim 1 further comprising: 

extracting a second locator from the attribute certificate, wherein the second locator 
identifies a location of a public key certificate of a holder of the attribute certificate; 
retrieving the public key certificate of the holder of the attribute certificate; 
authenticating the holder using the public key certificate of the holder. 

3. The method of claim 1 wherein the attribute certificate and the public key certificate of 
the issuing authority for the attribute certificate are formatted according to the X.509 standard. 

4. The method of claim 1 wherein the first locator is stored within an X.509 extension 
within the attribute certificate. 

5. A method for obtaining authorized access to controlled resources within a distributed data 
processing system, the method comprising: 
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sending an attribute certificate from a client to a host within the distributed data 
processing system, wherein the attribute certificate comprises a first locator that identifies a 
location of a public key certificate of an issuing authority for the attribute certificate; and 

receiving authorization for the client to access the controlled resources in accordance 
with authorization attributes stored in the attribute certificate. 

6. The method of claim 5, wherein the attribute certificate comprises a second locator that 
identifies a location of a public key certificate of a holder of the attribute certificate, further 
comprising: 

receiving authentication for a holder of the attribute certificate. 

7. A method for generating a digital certificate, the method comprising: 

receiving, at an attribute-certificate-issuing authority, a request for an attribute certificate 
from a client; 

generating the attribute certificate in response to the received request for an attribute 
certificate, wherein the attribute certificate comprises a first locator that identifies a location of a 
public key certificate of the attribute-certificate-issuing authority; and 

sending the generated attribute certificate to the client. 

8. The method of claim 7 further comprising: 

retrieving from the request for an attribute certificate a second locator that identifies a 
location of a public key certificate of a subsequent holder of the attribute certificate; and 
embedding in the attribute certificate the second locator. 

9. An apparatus for authorizing access to controlled resources within a distributed data 
processing system, the apparatus comprising: 

receiving means for receiving an attribute certificate from a client at a host within the 
distributed data processing system; 
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first extracting means for extracting a first locator from the attribute certificate, wherein 
the first locator identifies a location of a public key certificate of an issuing authority for the 
attribute certificate; 

first retrieving means for retrieving the public key certificate of the issuing authority for 
the attribute certificate; 

verifying means for verifying the attribute certificate using the public key certificate of 
the issuing authority for the attribute certificate; and 

authorizing means for authorizing the client to have access to the controlled resources in 
accordance with authorization attributes stored in the attribute certificate. 

10. The apparatus of claim 9 further comprising: 

second extracting means for extracting a second locator from the attribute certificate, 
wherein the second locator identifies a location of a public key certificate of a holder of the 
attribute certificate; 

second retrieving means for retrieving the public key certificate of the holder of the 
attribute certificate; 

authenticating means for authenticating the holder using the public key certificate of the 

holder. 

1 1 . The apparatus of claim 9 wherein the attribute certificate and the public key certificate of 
the issuing authority for the attribute certificate are formatted according to the X.509 standard. 

12. The apparatus of claim 9 wherein the first locator is stored within an X.509 extension 
within the attribute certificate. 

13. An apparatus for obtaining authorized access to controlled resources within a distributed 
data processing system, the apparatus comprising: 

sending means for sending an attribute certificate from a client to a host within the 
distributed data processing system, wherein the attribute certificate comprises a first locator that 
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identifies a location of a public key certificate of an issuing authority for the attribute certificate; 
and 

first receiving means for receiving authorization for the client to access the controlled 
resources in accordance with authorization attributes stored in the attribute certificate. 

14. The apparatus of claim 13, wherein the attribute certificate comprises a second locator 
that identifies a location of a public key certificate of a holder of the attribute certificate, further 
comprising: 

second receiving means for receiving authentication for a holder of the attribute 
certificate. 

15. An apparatus for generating a digital certificate, the apparatus comprising: 

receiving means for receiving, at an attribute-certificate-issuing authority, a request for an 
attribute certificate from a client; 

generating means for generating the attribute certificate in response to the received 
request for an attribute certificate, wherein the attribute certificate comprises a first locator that 
identifies a location of a public key certificate of the attribute-certificate-issuing authority; and 

sending means for sending the generated attribute certificate to the client. 

16. The apparatus of claim 15 further comprising: 

retrieving means for retrieving from the request for an attribute certificate a second 
locator that identifies a location of a public key certificate of a subsequent holder of the attribute 
certificate; and 

embedding means for embedding in the attribute certificate the second locator. 

17. A computer program product in a computer readable medium for use in a distributed data 
processing system for authorizing access to controlled resources within the distributed data 
processing system, the computer program product comprising: 

instructions for receiving an attribute certificate from a client at a host within the 
distributed data processing system; 
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instructions for extracting a first locator from the attribute certificate, wherein the first 
locator identifies a location of a public key certificate of an issuing authority for the attribute 
certificate; 

instructions for retrieving the public key certificate of the issuing authority for the 
attribute certificate; 

instructions for verifying the attribute certificate using the public key certificate of the 
issuing authority for the attribute certificate; and 

instructions for authorizing the client to have access to the controlled resources in 
accordance with authorization attributes stored in the attribute certificate. 

18. The computer program product of claim 17 further comprising: 

instructions for extracting a second locator from the attribute certificate, wherein the 
second locator identifies a location of a public key certificate of a holder of the attribute 
certificate; 

instructions for retrieving the public key certificate of the holder of the attribute 
certificate; 

instructions for authenticating the holder using the public key certificate of the holder. 

19. The computer program product of claim 17 wherein the attribute certificate and the 
public key certificate of the issuing authority for the attribute certificate are formatted according 
to the X.509 standard. 

20. The computer program product of claim 17 wherein the first locator is stored within an 
X.509 extension within the attribute certificate. 

21 . A computer program product in a computer readable medium for use in a distributed data 
processing system for obtaining authorized access to controlled resources within the distributed 
data processing system, the computer program product comprising: 

instructions for sending an attribute certificate from a client to a host within the 
distributed data processing system, wherein the attribute certificate comprises a first locator that 
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identifies a location of a public key certificate of an issuing authority for the attribute certificate; 
and 

instructions for receiving authorization for the client to access the controlled resources in 
accordance with authorization attributes stored in the attribute certificate. 

22. The computer program product of claim 21, wherein the attribute certificate comprises a 
second locator that identifies a location of a public key certificate of a holder of the attribute 
certificate, further comprising: 

instructions for receiving authentication for a holder of the attribute certificate. 

23. A computer program product in a computer readable medium for use in a data processing 
system for generating a digital certificate, the computer program product comprising: 

instructions for receiving, at an attribute-certificate-issuing authority, a request for an 
attribute certificate from a client; 

instructions for generating the attribute certificate in response to the received request for 
an attribute certificate, wherein the attribute certificate comprises a first locator that identifies a 
location of a public key certificate of the attribute-certificate-issuing authority; and 

instructions for sending the generated attribute certificate to the client. 

24. The computer program product of claim 23 further comprising: 

instructions for retrieving from the request for an attribute certificate a second locator that 
identifies a location of a public key certificate of a subsequent holder of the attribute certificate; 
and 

instructions for embedding in the attribute certificate the second locator. 

25. A data structure representing an attribute certificate for use in a data processing system, 
the data structure comprising: 

an issuer name; 
a signature; 
a holder name; 



Page 25 
Benantar- 09/734,810 



an attribute; and 

an extension, wherein the extension comprises a locator identifying a location of a public 
key certificate of an issuing authority for the attribute certificate. 
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